Security Vulnerabilities, CVEs, Published In 2002 (Overflow) CVSS score >= 9
Buffer overflow in badmin.c in BannerWheel 1.0 allows remote attackers to execute arbitrary code via a long rcmd command.
Max CVSS
10.0
EPSS Score
2.42%
Published
2002-12-31
Updated
2017-07-29
Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request.
Max CVSS
10.0
EPSS Score
13.09%
Published
2002-12-31
Updated
2016-10-18
Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request.
Max CVSS
10.0
EPSS Score
2.64%
Published
2002-12-31
Updated
2008-09-05
Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in proxy.c for the SOCKS5 module or (2) the HandleS4Connection function in proxy.c for the SOCKS4 module.
Max CVSS
10.0
EPSS Score
1.11%
Published
2002-12-31
Updated
2008-09-05
CVE-2002-2268
Public exploit
Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL.
Max CVSS
9.4
EPSS Score
89.61%
Published
2002-12-31
Updated
2017-07-29
Stack-based buffer overflow in the parse_field function in cgi_lib.c for LIBCGI 1.0.2 and 1.0.3 allows remote attackers to execute arbitrary code via a long argument.
Max CVSS
10.0
EPSS Score
1.60%
Published
2002-12-31
Updated
2017-07-29
Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via (1) a long header name, (2) a long IMAP flag, or (3) a script that generates a large number of errors that overflow the resulting error string.
Max CVSS
10.0
EPSS Score
8.03%
Published
2002-12-31
Updated
2017-07-29
Buffer overflow in the changevalue function in libcgi.h for Marcos Luiz Onisto Lib CGI 0.1 allows remote attackers to execute arbitrary code via a long argument.
Max CVSS
10.0
EPSS Score
4.72%
Published
2002-12-31
Updated
2017-07-29
Multiple buffer overflows in Sybase Adaptive Server 12.0 and 12.5 allow remote attackers to execute arbitrary code via (1) a long parameter to the xp_freedll extended stored procedure or (2) a long database name argument to the DBCC CHECKVERIFY function.
Max CVSS
10.0
EPSS Score
16.20%
Published
2002-12-31
Updated
2017-07-29
Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method.
Max CVSS
10.0
EPSS Score
3.50%
Published
2002-12-31
Updated
2017-07-29
Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret.
Max CVSS
10.0
EPSS Score
5.42%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname.
Max CVSS
10.0
EPSS Score
1.02%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in Microsoft Active Data Objects (ADO) in Microsoft MDAC 2.5 through 2.7 allows remote attackers to have unknown impact with unknown attack vectors. NOTE: due to the lack of details available regarding this issue, perhaps it should be REJECTED.
Max CVSS
10.0
EPSS Score
1.41%
Published
2002-12-31
Updated
2017-07-11
Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
Max CVSS
9.8
EPSS Score
7.12%
Published
2002-12-31
Updated
2024-02-15
Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers to execute arbitrary code as root via a long request that is split into multiple packets.
Max CVSS
10.0
EPSS Score
5.58%
Published
2002-12-31
Updated
2017-07-12
Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow.
Max CVSS
10.0
EPSS Score
0.31%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in lscfg of unknown versions of AIX has unknown impact.
Max CVSS
10.0
EPSS Score
0.21%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in the URL catcher feature for SSH Secure Shell for Workstations client 3.1 to 3.2.0 allows remote attackers to execute arbitrary code via a long URL.
Max CVSS
10.0
EPSS Score
1.80%
Published
2002-11-25
Updated
2017-07-11
Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code.
Max CVSS
10.0
EPSS Score
1.97%
Published
2002-04-22
Updated
2008-09-05
Signed integer overflow in the bttv_read function in the bttv driver (bttv-driver.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
0.40%
Published
2002-12-31
Updated
2008-09-05
jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack.
Max CVSS
10.0
EPSS Score
5.43%
Published
2002-12-26
Updated
2017-10-10
CVE-2002-1359
Public exploit
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.
Max CVSS
10.0
EPSS Score
97.18%
Published
2002-12-23
Updated
2017-10-11
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
Max CVSS
10.0
EPSS Score
19.30%
Published
2002-12-23
Updated
2017-10-11
CVE-2002-1318
Public exploit
Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
Max CVSS
10.0
EPSS Score
14.54%
Published
2002-12-11
Updated
2018-05-03
Buffer overflow in log2mail before 0.2.5.1 allows remote attackers to execute arbitrary code via a long log message.
Max CVSS
10.0
EPSS Score
2.58%
Published
2002-11-12
Updated
2008-09-05